Overview

overview

8

Static

static

3

2d05ee57cc...02.exe

windows7-x64

8

2d05ee57cc...02.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    07-10-2023 07:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2d05ee57cc109a54690b83fbd22a635c9dc446d99af36b62744e65c2a28b4f02.exe

  • Size

    4.6MB

  • MD5

    4811b91d161f382809a6737f2c6d7f12

  • SHA1

    476dd81c7b3310bd8534b8f8fbd41c67bfdb7b68

  • SHA256

    2d05ee57cc109a54690b83fbd22a635c9dc446d99af36b62744e65c2a28b4f02

  • SHA512

    2c710a7d5d1501571d0b0cf0a5bb60db20fd1c9739ff2d2cb01a23f26c8db083aa5fdb2fcb5c86c950b01cee1ec94e52028bf4f5c9f863d570ba942534053454

  • SSDEEP

    98304:IG1c5g+Wm3n0tzGoFrnoNspKdzOJDb4v+:UgjGoFrn4wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2d05ee57cc109a54690b83fbd22a635c9dc446d99af36b62744e65c2a28b4f02.exe
    "C:\Users\Admin\AppData\Local\Temp\2d05ee57cc109a54690b83fbd22a635c9dc446d99af36b62744e65c2a28b4f02.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:3024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    ba6d22c60569a6f731133f18a1acc141

    SHA1

    842488f48f7c2597c2ac4fbe93078e2ab6483e3a

    SHA256

    997ff93ea9020a4a9e7f6efedc5130ffca7f296cf8288d593eee7a88f538e7ea

    SHA512

    672d0d3038844ec9e6158634b7a057a3963021daf86cb6cb2539263a4efa66412206492a8ed9ec36e8b9f2e188e65ee23edf83e7eec85083b8b4d17fb769b71b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    975cf65442c18729a07992f18c4f094b

    SHA1

    01c7fd4ec4e86c1e948016994fa4c1987fbb5c54

    SHA256

    92a3619fa58b49ec34f0fc1fd86a6e1a5a140554ba4574fc034fab53a8ced6dd

    SHA512

    06517d6bf302ef638c91f633e305af370ce310395d9a361e72d0feec001d293c693833cd8e2f0f566f0a12fe90231bfc8d86ef36a8c56ead1822e67028e78942

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    0c80e6c9f9a241d16cceb9d8c9c540ec

    SHA1

    024b45621fce51d3e41f585e6fbe634710c150e8

    SHA256

    3ec7c57bd008b643a1273c0261b59f992a11b6bbaaa210670750dae3b1372119

    SHA512

    90bfeaf701b41142e84af5d0533c8fcd06f3fb3a7e495b05757b45c1d8501ebba95a7a6192135c6ab154baac610b5e142809bf87c42ead0655f45d7c52a94a94

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    9831f5f98c05097f35f0ea121f3ffb7a

    SHA1

    1e72676bb81615404908d4c995b04211406b9d75

    SHA256

    1d838a771744c13e5a323072e5c2405552375f6d8d5bb030a48cfd799d90323e

    SHA512

    e69a82246ca648038866e64223d25bb177c90d2a61dff180548f1a2cb878ab8cdcd87335bf9260c9cf0758bb4c5b0603a014582be34c52a30549261cfb69b2f0

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb34E6.tmp
    Filesize

    140.4MB

    MD5

    4cb143fdad968165c2dbe48ba8950bb1

    SHA1

    cb0faa0650fba759a596663382cc6692dd8a727a

    SHA256

    4daab0bcf0af280b939c6b52df6d7b98bdad5d062b65fc4318e44f948f43103c

    SHA512

    a6613467737f9ad3a554a97e71053451eac5ba966550708b77b4b1ae1a0c1aab1845ff94563701a1ff1cad27cfef59d8f733838871d139c4599ae72a104ea821

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb34E6.tmp
    Filesize

    140.4MB

    MD5

    4cb143fdad968165c2dbe48ba8950bb1

    SHA1

    cb0faa0650fba759a596663382cc6692dd8a727a

    SHA256

    4daab0bcf0af280b939c6b52df6d7b98bdad5d062b65fc4318e44f948f43103c

    SHA512

    a6613467737f9ad3a554a97e71053451eac5ba966550708b77b4b1ae1a0c1aab1845ff94563701a1ff1cad27cfef59d8f733838871d139c4599ae72a104ea821

    Download Submit